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Box No. I Basis of the opinion 

1 . With regard to the language, this opinion has been established on the basis of the international application in 
the language in which it was filed, unless otherwise indicated under this item. 

□ This opinion has been established on the basis of a translation from the original language into the following 
language , which is the language of a translation furnished for the purposes of international search 
(under Rules 12.3 and 23.1(b)). 

2. With regard to any nucleotide and/or amino acid sequence disclosed in the international application and 
necessary to the claimed invention, this opinion has been established on the basis of: 

a. type of material: 

□ a sequence listing 

□ table(s) related to the sequence listing 

b. format of material: 

□ in written format 

□ in computer readable form 

c. time of filing/furnishing: 

□ contained in the international application as filed. 

□ filed together with the international application in computer readable form. 

□ furnished subsequently to this Authority for the purposes of search. 

3. □ In addition, in the case that more than one version or copy of a sequence listing and/or table relating thereto 

has been filed or furnished, the required statements that the information in the subsequent or additional 
copies is identical to that in the application as filed or does not go beyond the application as filed, as 
appropriate, were furnished. 

4. Additional comments: 
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Box No. IV Lack of unity of invention 

1 . 13 In response to the invitation (Form PCT/ISA/206) to pay additional fees, the applicant has: 

S paid additional fees. 

□ paid additional fees under protest. 

□ not paid additional fees. 

2. □ This Authority found that the requirement of unity of invention is not complied with and chose not to invite 

the applicant to pay additional fees. 

3. This Authority considers that the requirement of unity of invention in accordance with Rule 13.1, 13.2 and 13.3 is 

□ complied with 

M not complied with for the following reasons: 
see separate sheet 

4. Consequently, this report has been established in respect of the following parts of the international application: 
M all parts. 

□ the parts relating to claims Nos. 



Box No. V Reasoned statement under Rule 43b/s.1(a)(i) with regard to novelty, inventive step or 
industrial applicability; citations and explanations supporting such statement 

1. Statement 



Novelty (N) 


Yes: 


Claims 


1-14 




No: 


Claims 




Inventive step (IS) 


Yes: 


Claims 


13,14 




No: 


Claims 


1-12 


Industrial applicability (IA) 


Yes: 


Claims 


1-14 




No: 


Claims 





2. Citations and explanations 
see separate sheet 
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Box No. VII Certain defects in the international application 

The following defects in the form or contents of the international application have been noted: 
see separate sheet 



Box No. VIII Certain observations on the international application 

The following observations on the clarity of the claims, description, and drawings or on the question whether the 
claims are fully supported by the description, are made: 

see separate sheet 
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Re Item IV 

Non-unity of invention 

1 . This International Examining Authority found two groups of inventions in this 
international application. 

I. Claims 1 and 6 are directed to associating derivative session tickets with a client 
node. This is achieved by a method of associating session tickets comprising 
the steps and a system for associating session tickets adapted to: receiving, by 
a ticketing authority server, a ticket generation request and information about a 
client node; identifying, by a ticketing authority server, a master session ticket 
associated in a storage element with the client node; generating, by a ticketing 
authority server, a derivative session ticket for the client node; associating, by a 
ticketing authority server, the derivative session ticket with the master session 
ticket; and storing, by a ticketing authority server, information about the client 
node and the derivative session ticket in the storage element. 

II. Claim 1 3 is directed to renewing session expiration dates. This is achieved by a 
method of renewing associated session tickets comprising the steps: receiving, 
by a ticket authority server, a session ticket renewal request and a session 
ticket, retrieving, by a ticket authority server, the session associated with the 
received session ticket; renewing, by a ticket authority server, session expiration 
date; retrieving, by a ticket authority server, the master session ticket associated 
with the received session ticket; renewing, by a ticket authority server, the 
session expiration date of the master session ticket; retrieving, by a ticket 
authority server, any derivative ticket associated with the master session ticket; 
and renewing, by a ticket authority server, the session expiration date of the 
derivative session ticket associated with the master session ticket. 

2. The lack of unity becomes apparent a priori. 

2.1 . The two claimed inventions solve different technical problems and, hence, are not so 
linked as to form a single general inventive concept, Rule 13.1 PCT. 
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2.2. There is no technical relationship between the two groups of inventions as not a 
single same or corresponding technical feature is involved, Rule 13.2 PCT. 



Re Item V - 1. Group of Invention 

Reasoned statement with regard to novelty, inventive step or industrial applicability; 
citations and explanations supporting such statement 

1 . Reference is made to the following documents: 
D1: WO 2004/049672 A 

2. The subject-matter of claim 1 can not be considered as involving an inventive step, 
Article 33(3) PCT. 

2.1 . D1 discloses with regard to most of the features of method claim 1 (the references in 
parentheses applying to this document): 

a method of associating session tickets (page 12, lines 25-28 and Fig. 8), comprising 
receiving, by a ticketing authority server, a ticket generation request (page 1 5, 
lines 1-7 and step 816, Fig. 8) and information about a client node (page 14, 
lines 30-32 and steps 812-816, Fig. 8); 

identifying, by a ticketing authority server, a master session ticket (page 1 6, 
lines 26-28 and step 834, Fig. 8) associated in a storage element with the client 
node (402, 406,410, Fig. 4); 

generating, by a ticketing authority server, a derivative session ticket for the 
client node (page 13, lines 14-19); 

associating, by a ticketing authority server, the derivative session ticket with the 
master session ticket (page 16, lines 28-29); and 

2.2. The subject-matter of claim 1 differs from the disclosure in D1 in storing, by the 
ticketing authority server, information about the client node and the derivative session 
ticket in the storage element. 



Form PCT/ISA/237 (Separate Sheet) (Sheet 2) (EPO-Jartuary 2004) 



WRITTEN OPINION OF THE 
INTERNATIONAL SEARCHING 
AUTHORITY (SEPARATE SHEET) 



International application No. 
PCT/US2005/028606 



2.3. Storing, by the ticketing authority server, information about the client node and the 
derivative session ticket in the storage element is the staightforward design measure 
for memorising all the security associations of a client node. Taking this measure is 
supported by the hint in D1 to install the derived shared key in addition to installing 
the shared key in a security association table (page 16, lines 26-29). 

3. The subject-matter of independent claim 6 can not be considered as involving an 
inventive step, Article 33(3) PCT. 

3.1 . The subject-matter of apparatus claim 6 entirely corresponds to the non-inventive 
subject-matter of method claim 1 . 

4. The additional features of the dependent claims do not add anything new or inventive 
to the independent claims because the features are either known from the above 
cited prior art (generating a master session ticket) or are common measures 
(identifying a master session ticket using the received information to query, assigning 
session profile type to session ticket, master session ticket contains client identifier, 
user name, domain name or session profile type, the derivative session ticket 
comprises session profile type or reference to master session ticket, associating 
tickets by storing a reference). 



Re Item V - II. Group of Invention 

Reasoned statement with regard to novelty, inventive step or industrial applicability; 
citations and explanations supporting such statement 



1 . Reference is made to the following documents: 



D2: US 2003/233541 A1 

D3: "A cryptographic protocol to obtain secure communications in extended 
Ethernet environment", XP01 0030804 

2. It is considered that the present invention meets the criteria of Article 33(1 ) PCT as 
the subject-matter of independent claim 13 is new and is considered to be inventive, 
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Article 33(2) and (3) PCT. 

3.1 . With regard to the features of method claim 13, D2 discloses a method (paragraph 
0075 and Fig. 3) of renewing associated session tickets, receiving, by a ticket 
authority server, a session ticket renewal request and a session ticket (step 250, 
paragraph 0075 and Fig. 3); retrieving, by a ticket authority server, the session 
associated with the received session ticket (step 251 , paragraph 0075 and Fig. 3); 
renewing, by a ticket authority server, session expiration date (step 253, paragraph 
0075 and Fig. 3); renewing, by a ticket authority server, the session expiration date of 
session tickets (paragraphs 0193-0194). 

3.2. The subject-matter of claim 13 differs from the disclosure in D2 in retrieving, by a 
ticket authority server, a master session ticket associated with the received session 
ticket; renewing, by a ticket authority server, the session expiration date of the master 
session ticket; retrieving, by a ticket authority server, any derivative ticket associated 
with the master session ticket; and renewing, by a ticket authority server, the session 
expiration date of the derivative session ticket associated with the master session 
ticket. 

3.3. The problem to be solved by the present invention is consistently updating the validity 
of all interrelated session credentials by a central authority having resource 
constraints. 

3.4. The solution is not obvious from the above mentioned prior art. Although D2 
considers the presence of multiple session tickets in the network, these tickets are 
kept independently on each other, without any master ticket. Moreover, there is 
neither a hint to synchronise the keys' validity periods nor a hint to use a hierarchical 
ticket structure, which then could serve as basis for maintaining relationships 
between interrelated tickets. D3 fails to manage the validity of keys within a key 
hierachy by means of expiration dates and only relies on periodical renewal, i.e., 
periodical retransmission, of keys, and most of the keys is only decentrally 
maintained in a peer-to-peer fashion without ticket authority server. The remaining 
documents of the International Search Report do not contain expiration date update 
for keys at all. 
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4. Claim 1 4 depends on independent claim 1 3. Hence, the subject-matter of claim 1 4 is 
also new and inventive, Article 33(2) and (3) PCT. 



Re Item VII 

Certain defects in the international application 

1 . The independent claims are not in the two-part form, Rule 6.3(b) PCT. 

2. The features of the claims are not provided with reference signs, Rule 6.2(b) PCT. 

3. The relevant background art is not mentioned in the description, nor are these 
documents identified therein, Rule 5.1(a)(ii) PCT. 



Re Item VIII 

Certain observations on the international application 

1 . Independent apparatus claim 6 contains a "master session ticket" and a "derivative 
session ticket", which represent abstract data structures rather than technical 
features of the claimed apparatus itself, Article 6 PCT. 

2. Independent apparatus claim 6 contains method steps ("receiving", identifying", 
"generating", "associating", "storing"). Hence, the intended limitations are unclear, 
Article 6 PCT. 
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